Popular wallet developer Electrum has released an emergency patch for a key vulnerability in Bitcoin wallets.
If you do not rest assured that the private key generated by the "secret" can also be generated from where you think it is safe FCH, BCH or BTC private key, their corresponding addresses look different, but the private key is generic.
First create a multi-sign account in the Electrum wallet, and normally a private key should be placed in a wallet. Here's a 2/3 multi-sign as an example. Suppose there are three accounts W1, W2, W3.
Wallet password: The password set for the wallet and the wallet's private key is not the same concept, the wallet password is equivalent to all the private key on your wallet for secondary encryption, if you set the wallet password, even if you get the wallet.dat file where the private key is stored, you can not view the information of the private key in the file.
Hackers launched a denial-of-service (DoS) attack on a well-known wallet Electrum server, according to Johnwick.io. Hackers used botnets of more than 140,000 computers to attack Electrum nodes and simultaneously deployed malicious nodes. When a user connects to these malicious nodes and sends a transaction using an older version of Electrum, the user is prompted to update the Backdoor Client. If the user installs the client as prompted, the private key is stolen and all digital assets are lost. Millions of dollars of digital currency have been stolen, according to Electrum officials. De-dimensional Security Labs recommends that users of electrum wallets be updated to the latest version of the client through the official website and never use the link in the prompt message.
Qtum Electrum Tutorial Qtum Electrum Light Wallet.
After installation, open Electrum, and create a new wallet, Follow the steps from Figure 4 to Figure 8 to generate a new cold wallet address, electrum by default is to create 5 new addresses at a time, note Figure 8, type "listaddressese()" command on the command line, the system will list the newly created 5 Bitcoin addresses, then use the getbukeys command, or get the public key from the menu master key public (the public key and address are not the same concept Oh), please copy this public key down, and save it in a text file. Figure 9 is the private key showing these 5 new addresses, put here just to explain to you, used to compare with Figure 12, 5 private keys are in this never touch the net linux operating system wallet, we do not actually do Figure 9 this step. And don't tell anyone else your private key.
Where the private key can be verified by the public key, public information is visible to everyone, is unique, and can be verified by others.
The public key generation process is irreversible, i.e. the private key cannot be rolled out back by the public key. The public and private keys of a digital currency are usually stored in a Bitcoin wallet file, where the private key is the most important.
where is private key electrum
The service provider that owns the user's data encrypts the user's information to generate the private and public keys, where the public key generates the operator's digital signature and the private key is stored locally, such as a SIM card or mobile phone.
Register your wallet is more important, you are good to keep your private key, because the private key is not properly kept, lost money or stolen things are quite a lot. Problems with the private key have led to abounding of cases where money cannot be picked up.
Users of Bitcoin wallet Electrum are facing phishing attacks, according to Johnwick.io. Hackers broadcast messages to electrum clients through a malicious server, prompting the user to update to v4.0.0, and if the user is prompted to install this backdoor-carrying client, the private key is stolen and all digital assets are stolen. At the time of writing, at least 1,450 BTCs worth approximately $11.6 million had been stolen from phishing attacks that forged Electrum upgrade alerts. Devi Security Labs hereby suggests that versions of Electrum below 3.3.4 are vulnerable to such phishing attacks, and users using Electrum Wallet are requested to update to the latest version of Electrum3.3.8 via the official website (electrum.org), which has not yet been officially released v4.0.0, and do not use the link in the prompt message to avoid asset losses.
Rule 1 - If you don't trade cryptocurrencies, get into the habit of transferring money to wallets where the private key is controlled by the individual. How do I know if I control the private key? Simple, do you have 12 or 24 words of mmnation set? If you have settings, you can control the wallet's private key. If not, then someone else is controlling the wallet's private key.
Electrum is a world-renowned Bitcoin light wallet with a long history of multi-signature support and a very broad user base, many of which like to use Electrum as a cold wallet or multi-signature wallet for Bitcoin or even USDT (Omni). Based on this usage scenario, Electrum is used less frequently on the user's computer. The current version of Electrum is 3.3.8, and previous versions of 3.3.4 are known to have "message defects" that allow an attacker to send an "update prompt" through a malicious ElectrumX server. This "update tip" is very confusing to the user, and if you follow the prompt to download the so-called new version of Electrum, you may be tricked. According to user feedback, because of this attack, stolen bitcoins are in the four digits or more. This captured currency theft attack is not stealing the private key (electrum's private key is generally stored with two-factor encryption), but replaces the transfer destination address when the user initiates the transfer. Here we remind users that when transferring money, special attention needs to be paid to whether the destination address has been replaced, which is a very popular method of currency theft recently. It is also recommended that users use hardware wallets such as Ledger, and if you pair it with Electrum, although the private key does not have any security issues, you should also be alert to the replacement of the destination address.
Xie Xiang: You will find that there is a very fun thing, that is, throughout the life cycle of key management, the real private key has never appeared, there is no private key stored where the problem. This is the essence of MPC-based key management, which guarantees that the key is usable but does not exist.
Private key, not just a private key
Next, click Export Private Key. A pop-up window will appear telling you where the private key has been exported (usually to your computer's desktop)
In the new version, after the identity is created, everyone will be be reminded to back up the private key as soon as possible to avoid the situation where the private key is not backed up and assets cannot be recovered.
AG calculated by a geometric algorithm by a fixed point G on the ellipse curve, where a is the private key, because the geometric inverse operation on the ellipse curve is very complex, so the private key can be dededed from the public key, and the public key method reverses the private key.
According to the Dimensionality Reduction Security Lab, users of Bitcoin wallet Electrum are currently facing phishing attacks. The hacker broadcasts a message to the Electrum client through a malicious server, prompting the user to update to v4.0.0. If the user installs this "backdoor client" as prompted, the private key will be stolen and all digital assets will be stolen
Access the location where it stores the private key.
Bitcoin's public and private keys are usually stored in Bitcoin wallet files, where the private key is the most important, and the loss of the private key means the loss of all Bitcoin assets at the corresponding address.